0011a6adce7ecde84905746a1a05282c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0011a6adce7ecde84905746a1a05282c_JaffaCakes118
Size

815KB
MD5

0011a6adce7ecde84905746a1a05282c
SHA1

64e9cd3803e2d94ce4256b1cded90bd3b4a42f7b
SHA256

5322dbfa878e2d38aba1ad76e4cb3f60c2207441683f40c6b08be21372a8b076
SHA512

0fda603c5f55a77725e42482ed84f2c8c75b9ee966fa380f281adc58b4d191cb583fdb0cad3e70b086bcb1ca1cd033dcd0f775d802f205d132f04ddb2ff8f731
SSDEEP

12288:LeFSvi+YMIP9II5rcMCXUHHHe+/jXfEUNVf5LquvtXuNvRJKwXuuk/:aMiHSMUUHHHzsUZquVXuxPK2i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0011a6adce7ecde84905746a1a05282c_JaffaCakes118

Files

0011a6adce7ecde84905746a1a05282c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f635045b5bb2d8e93fbdaaf282ba2ff3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetACP
lstrlenW
CloseHandle
LoadLibraryExA
GetConsoleCP
CreateEventA
IsBadReadPtr
GetFullPathNameA
FindClose
IsDebuggerPresent
FreeEnvironmentStringsA
CreateFileA
GetLastError
LocalFree
CreateFileMappingA
GlobalLock
GetStdHandle
HeapCreate
LocalUnlock

user32

IsWindow
CheckMenuItem
GetDlgItem
GetIconInfo
GetDC
SetFocus
PostMessageA
ScrollWindow
DispatchMessageA
GetMessageA
RedrawWindow
EndDialog
GetDlgItemTextA
DrawIconEx

uxtheme

DrawThemeIcon
EnableTheming
CloseThemeData
GetThemeMetric
GetThemeColor

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ